Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
File: LKyEzuxXs1-jlTSuIwCa6oICOao.mft (raw, json)
Hash identifier: rulzob2Scw0wUlelUPWhJtlJK6ObBM04K02sCNP4z7k=
Subject key identifier: B4:D2:2E:97:93:3D:BB:D8:92:4D:C6:8E:82:50:CF:7C:04:AF:CE:8F
Authority key identifier: 2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
Certificate issuer: /CN=2cac84ceec57b35fa39534ae23009aea820239aa
Certificate serial: 01976E50490964EA4A88CF7066D19D580E06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
Manifest number: 07B5
Signing time: Sat 14 Jun 2025 12:00:44 +0000
Manifest this update: Sat 14 Jun 2025 12:00:44 +0000
Manifest next update: Sun 15 Jun 2025 12:00:44 +0000
Files and hashes: 1: LKyEzuxXs1-jlTSuIwCa6oICOao.crl (hash: b7bu7TL2oXrDpWaJInozYzM97TvWZr3zcToi3/KVmyo=)
2: cj0dff8EdsGG8DaopETeofzcldw.roa (hash: 06o/5+ZmJQt03Z2LLNo5k4a7U1bSw5gDTRAuW+tjkok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:49:09:64:ea:4a:88:cf:70:66:d1:9d:58:0e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cac84ceec57b35fa39534ae23009aea820239aa
Validity
Not Before: Jun 14 12:00:44 2025 GMT
Not After : Jun 15 12:00:44 2025 GMT
Subject: CN=b4d22e97933dbbd8924dc68e8250cf7c04afce8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:25:f2:3e:2c:32:ab:08:a0:5d:b6:37:7a:
27:26:80:0a:29:c6:7c:ff:1a:4a:ae:3f:9e:72:3d:
42:f8:66:03:95:d4:aa:53:a2:75:c5:67:cb:94:30:
c0:1f:84:47:4a:c3:a1:91:c2:18:81:a4:33:6f:3c:
9d:10:60:2f:62:e2:1f:24:be:73:22:24:08:37:f8:
42:84:d0:a2:a4:f7:6a:e6:8c:57:ef:0e:40:85:2c:
4e:2e:18:df:3e:29:71:39:3c:1f:57:e9:83:d8:32:
ca:16:f2:3d:9f:37:37:e7:26:08:b5:68:f5:bf:9e:
3f:b9:6d:8c:96:6d:2a:aa:59:2f:43:13:e7:32:d4:
3b:86:31:8b:08:a0:06:e2:9a:b7:e5:1e:c1:40:f8:
ab:37:71:bb:33:60:33:7b:f0:a7:fa:0c:2a:89:aa:
92:88:a2:7c:a0:61:33:7c:57:13:29:2e:43:9a:69:
fb:2c:61:5c:7d:3e:a9:57:df:b1:d2:b7:e3:d4:07:
ba:e5:e5:ef:4f:cb:46:ee:59:14:c1:cd:cb:e1:48:
79:76:a5:98:98:5f:68:ec:8d:65:2f:45:b2:a5:be:
a8:ba:c0:f7:69:5e:49:d5:02:fd:05:9f:d5:3d:41:
2d:88:8d:d4:a2:22:60:c0:59:a4:c1:3e:f2:52:3e:
68:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D2:2E:97:93:3D:BB:D8:92:4D:C6:8E:82:50:CF:7C:04:AF:CE:8F
X509v3 Authority Key Identifier:
keyid:2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:50:1a:af:cd:6a:c4:d3:eb:32:9c:c5:84:2d:37:e4:2f:14:
84:7a:81:a7:d8:ff:7e:fe:2b:ed:33:f3:0f:e1:45:dc:b5:51:
e3:46:34:d8:c4:dd:8e:a3:0f:9b:88:47:cd:8b:c6:c9:7c:a2:
2e:cb:af:2b:9e:c2:77:f2:f4:d9:2a:b1:6f:d8:70:3b:35:4c:
c9:fd:7b:79:42:d1:70:c2:fb:eb:c8:e0:2a:0b:a3:26:39:1b:
5e:97:38:d0:f5:58:7a:a4:e3:71:f4:40:2c:1f:73:a2:11:bf:
4a:bb:29:4f:af:95:b2:54:a2:85:78:b3:35:50:53:ba:53:2b:
2d:da:39:c1:77:2b:b7:c6:60:dd:a6:db:e1:81:ee:ae:95:26:
60:8f:a8:47:51:a1:d1:25:4d:85:26:63:e3:56:ac:88:fe:82:
2f:24:96:84:b6:fc:6a:ec:b3:77:c1:ba:31:29:3f:ac:b9:06:
61:89:9f:19:77:f5:95:94:7f:b9:6f:30:13:10:d0:25:2e:d6:
e7:68:17:b8:f8:30:5b:1f:36:7d:34:63:3b:40:80:fe:c8:33:
84:4a:eb:f0:f3:02:32:40:01:73:87:d7:fd:cf:ea:ab:8d:c9:
a2:cf:95:ee:17:b8:11:b8:c7:10:62:3f:14:0f:67:74:77:dc:
65:40:c1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:33:37 2025 by rpki-client